A fix is available
APAR status
Closed as program error.
Error description
By enabling LDAP cache and userbasedn filter, lsuser able to list user information after the lsgroup command, even though it should not be. Ex: # cat /etc/security/ldap/ldap.cfg | grep ^userbasedn userbasedn:ou=People,o=ibm??(|(gidnumber=203)(gidnumber=2 05)) # cat /etc/security/ldap/ldap.cfg | grep ^groupbasedn groupbasedn:ou=Groups,o=ibm # lsuser -a id pgrp iphone8 3004-687 User "iphone8" does not exist. # lsgroup grp9 grp9 id=206 admin=false users=iphone8,iphone9 registry=LDAP # lsuser -a id pgrp iphone8 iphone8 id=232 pgrp=grp9
Local fix
Problem summary
By enabling LDAP cache and userbasedn filter, lsuser able to list user information after the lsgroup command, even though it should not be.
Problem conclusion
userbasedn filter is consider when group information is retrieved.
Temporary fix
Comments
6100-07 - use AIX APAR IV58381 6100-08 - use AIX APAR IV55363 6100-09 - use AIX APAR IV55961 6100-09 - use AIX APAR IV55961 6100-09 - use AIX APAR IV55961 7100-01 - use AIX APAR IV57694 7100-02 - use AIX APAR IV57159 7100-03 - use AIX APAR IV56017 7100-04 - use AIX APAR IV56096
APAR Information
APAR number
IV55961
Reported component name
AIX 610 STD EDI
Reported component ID
5765G6200
Reported release
610
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Submitted date
2014-02-26
Closed date
2014-02-26
Last modified date
2016-05-10
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
AIX 610 STD EDI
Fixed component ID
5765G6200
Applicable component levels
R610 PSY U859288
UP14/05/21 I 1000
PTF to Fileset Mapping
U859288 bos.rte.security 6.1.9.15
[{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSLLZP","label":"AIX Standard Edition"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Edition":"","Line of Business":{"code":"LOB08","label":"Cognitive Systems"}},{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SSMV87","label":"AIX 6.1 Enterprise Edition"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Edition":"","Line of Business":{"code":"LOB08","label":"Cognitive Systems"}},{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSMVAX","label":"AIX Express Edition"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Edition":"","Line of Business":{"code":"LOB08","label":"Cognitive Systems"}},{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SSAUMY","label":"IBM AIX Enterprise Edition"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Edition":"","Line of Business":{"code":"","label":""}},{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SG11Q","label":"AIX 6.1 HIPERS, APARs and Fixes"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Edition":"","Line of Business":{"code":"","label":""}},{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SG11R","label":"APARs - AIX 7.1 environment"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Edition":"","Line of Business":{"code":"","label":""}}]
Document Information
Modified date:
10 May 2016